lkft/linux-next-master - next-20241203 - log-parser-boot/kasan-bug-kasan-vmalloc-out-of-bounds-in-vmalloc_oob

Date

Dec. 3, 2024, 11:38 p.m.

Environment
qemu-arm64

[   37.231063] ==================================================================
[   37.232264] BUG: KASAN: vmalloc-out-of-bounds in vmalloc_oob+0x51c/0x5d0
[   37.233141] Read of size 1 at addr ffff80008010b7f8 by task kunit_try_catch/258
[   37.234196] 
[   37.234505] CPU: 1 UID: 0 PID: 258 Comm: kunit_try_catch Tainted: G    B            N 6.13.0-rc1-next-20241203 #1
[   37.235816] Tainted: [B]=BAD_PAGE, [N]=TEST
[   37.236493] Hardware name: linux,dummy-virt (DT)
[   37.237222] Call trace:
[   37.238007]  show_stack+0x20/0x38 (C)
[   37.238693]  dump_stack_lvl+0x8c/0xd0
[   37.239721]  print_report+0x2fc/0x5e0
[   37.240562]  kasan_report+0xc8/0x118
[   37.241239]  __asan_report_load1_noabort+0x20/0x30
[   37.242005]  vmalloc_oob+0x51c/0x5d0
[   37.242678]  kunit_try_run_case+0x14c/0x3d0
[   37.243425]  kunit_generic_run_threadfn_adapter+0x88/0x100
[   37.244181]  kthread+0x24c/0x2d0
[   37.245137]  ret_from_fork+0x10/0x20
[   37.245770] 
[   37.246094] The buggy address belongs to the virtual mapping at
[   37.246094]  [ffff80008010b000, ffff80008010d000) created by:
[   37.246094]  vmalloc_oob+0x98/0x5d0
[   37.247906] 
[   37.248243] The buggy address belongs to the physical page:
[   37.248983] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x106321
[   37.250288] flags: 0xbfffe0000000000(node=0|zone=2|lastcpupid=0x1ffff)
[   37.251217] raw: 0bfffe0000000000 0000000000000000 dead000000000122 0000000000000000
[   37.252628] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000
[   37.253950] page dumped because: kasan: bad access detected
[   37.254728] 
[   37.255066] Memory state around the buggy address:
[   37.255662]  ffff80008010b680: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   37.256908]  ffff80008010b700: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   37.257815] >ffff80008010b780: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 03 f8
[   37.258845]                                                                 ^
[   37.259951]  ffff80008010b800: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[   37.260860]  ffff80008010b880: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[   37.261755] ==================================================================
[   37.197745] ==================================================================
[   37.199185] BUG: KASAN: vmalloc-out-of-bounds in vmalloc_oob+0x578/0x5d0
[   37.200432] Read of size 1 at addr ffff80008010b7f3 by task kunit_try_catch/258
[   37.201053] 
[   37.201436] CPU: 1 UID: 0 PID: 258 Comm: kunit_try_catch Tainted: G    B            N 6.13.0-rc1-next-20241203 #1
[   37.202781] Tainted: [B]=BAD_PAGE, [N]=TEST
[   37.203976] Hardware name: linux,dummy-virt (DT)
[   37.204653] Call trace:
[   37.205119]  show_stack+0x20/0x38 (C)
[   37.205781]  dump_stack_lvl+0x8c/0xd0
[   37.206418]  print_report+0x2fc/0x5e0
[   37.206990]  kasan_report+0xc8/0x118
[   37.207814]  __asan_report_load1_noabort+0x20/0x30
[   37.209029]  vmalloc_oob+0x578/0x5d0
[   37.209651]  kunit_try_run_case+0x14c/0x3d0
[   37.210408]  kunit_generic_run_threadfn_adapter+0x88/0x100
[   37.211368]  kthread+0x24c/0x2d0
[   37.212236]  ret_from_fork+0x10/0x20
[   37.212934] 
[   37.213244] The buggy address belongs to the virtual mapping at
[   37.213244]  [ffff80008010b000, ffff80008010d000) created by:
[   37.213244]  vmalloc_oob+0x98/0x5d0
[   37.214948] 
[   37.215342] The buggy address belongs to the physical page:
[   37.216063] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x106321
[   37.217808] flags: 0xbfffe0000000000(node=0|zone=2|lastcpupid=0x1ffff)
[   37.218516] raw: 0bfffe0000000000 0000000000000000 dead000000000122 0000000000000000
[   37.219434] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000
[   37.220631] page dumped because: kasan: bad access detected
[   37.221211] 
[   37.221534] Memory state around the buggy address:
[   37.222170]  ffff80008010b680: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   37.223139]  ffff80008010b700: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   37.224464] >ffff80008010b780: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 03 f8
[   37.225692]                                                              ^
[   37.226709]  ffff80008010b800: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[   37.227944]  ffff80008010b880: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[   37.228857] ==================================================================

Metadata Full log Test run details

arch

arm64

host

x86_64

plan

2pjANFhcTUHYUD8KvmkoTjVeTmt

job_id

TEST:linaro@lkft#2pjARytps7if5HJMuumTS46nTsj

job_url

https://tuxapi.tuxsuite.com/v1/groups/linaro/projects/lkft/tests/2pjARytps7if5HJMuumTS46nTsj

artefacts

kernel

url	https://storage.tuxsuite.com/public/linaro/lkft/builds/2pjAOc9bkDiDA04up4xCb2C3vN5/Image.gz
sha256sum	7696a40d025f98ea7e22dbff6285b0cd7a198a045c5b4811710fc4905df88b37

rootfs

url	https://storage.tuxboot.com/debian/trixie/arm64/rootfs.ext4.xz
sha256sum	f592205e64add7389d8a1055c235aa3685e13c7cfdfdbe5f212ab22afdbeb656

modules

url	https://storage.tuxsuite.com/public/linaro/lkft/builds/2pjAOc9bkDiDA04up4xCb2C3vN5/modules.tar.xz
sha256sum	bfdbe907add46b30ce9c5dd00a77c19e4fd26300871ba14b257d0d3291f18d7d

durations

tests

boot	386.69
kunit	461.05

host_arch

amd64

build_name

gcc-13-lkftconfig-kunit

job_status

Complete

qemu_version

1:9.1.1+ds-5

Metadata

Failure - qemu-arm64 - gcc-13-lkftconfig-kunit